Requirement:
a) /myapp authenticated against AD for all users with Windows authentication
b) /myapp/API authenticated against AD for /one/ user with basic-auth
The plan was to have two sites in IIS with appropriate authentication
schemes. They both have a 'jakarata' virtual directory pointing to one
and the same physical path (DLL etc.).
Then we wanted to alter the security settings on the directory excluding
all but one user for requirement b). Since this modifies the security
settings of the physical folder we'd have to install the IIS Tomcat
connector a second time pointing to the same AJP port (one Tomcat instance).
Should this work in general?
Are there better alternatives to implement the given requirements?
Cheers,
Marcel
--
Marcel Stör, http://www.frightanic.com
Couchsurfing: http://www.couchsurfing.com/people/marcelstoer
O< ascii ribbon campaign - stop html mail - www.asciiribbon.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
|